Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.

Load the Google Maps JavaScript API script dynamically. This is an npm version of the Dynamic Library Import script. Sets the options for loading the Google Maps JavaScript API and installs the global ...

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

Cybersecurity researchers have discovered a malicious NuGet package that masquerades as a C# software development kit for Sicoob, one of Brazil's largest cooperative financial systems, to siphon ...

Google expands AI live speech translation with Gemini 3.5 Live Translate across Google Meet, Google Translate, and its API.

A coalition including Google, Microsoft, and GitHub published Agentic Resource Discovery, an open draft spec for how AI ...

Google has released emergency updates to patch another Chrome zero-day vulnerability that has been exploited in the wild, the ...

Google is reportedly offering to pay select Android developers for source-code access. Here’s what Play Store developers should check before signing.

Socket researchers linked 152 Chrome wallpaper extensions to hidden data logging, fake Google search traffic, and ad ...

Ky 2.0 is an open-source JavaScript HTTP client built on the Fetch API, featuring significant updates such as consolidated ...

AI coding agent skills library claude-skills ships 345 free, MIT-licensed packages for Claude Code, Codex, Cursor, Gemini CLI ...

The latest version of this package has small and limited breaking changes. See the changelog for details. The full API of this library can be found in api.md. The primary API for interacting with ...